Cybersecurity testing and validation

Paper #:
  • 2017-01-1655

Published:
  • 2017-03-28
Affiliated:
Abstract:
An essential part of any cybersecurity engineering process is testing the implementation of a system for vulnerabilities and validating the effectiveness of cybersecurity countermeasures. The SAE J3061 Cybersecurity Guidebook for Cyber-Physical Vehicle Systems provides a recommended framework which organizations can use to implement a cybersecurity engineering process, which includes activities such as integration and testing, penetration testing and verification/validation of cybersecurity requirements at the hardware, software and system levels. This paper explores the different kinds of testing that are appropriate at each of these process steps and discusses some important differences between cybersecurity testing and more familiar forms of testing. We also consider the necessary scope and depth of cybersecurity testing and suggest examples of how this can be related to cybersecurity requirements, cybersecurity goals and integrity levels, as determined by the threat analysis and risk assessment.
Access
Now
SAE MOBILUS Subscriber? You may already have access.
Buy
Attention: This item is not yet published. Pre-Order to be notified, via email, when it becomes available.
Select
Price
List
Download
$22.00
Mail
$22.00
Members save up to 36% off list price.
Share
HTML for Linking to Page
Page URL

Related Items

Technical Paper / Journal Article
2011-10-06
Standard
2000-02-17
Article
2016-03-04
Standard
2001-04-26